Attorney Docket No. 36321 -8009. US01 

Amendments to the Claims: 

This listing of the claims will replace all prior versions, and listings, of claims in the 
application. 

Listing of Claims: 

1 . (Currently Amended) A system for protecting sensitive information residing 
in server environments, comprising at least one processing device coupled among at 
least one network and at least one client computer, wherein the at least one processing 
device: 

receives at least one electronic transaction query from the at least one client 
computer via at least one secure channel; 

eva l uates the at l oast ono oloctron i c transact i on qu e ry for s e ns i tiv e data; 

reads a configuration file to determine how to identify sensitive data within the at 
least one electronic transaction query; 

encrypts the sensitive data; 

transfers the encrypted sensitive data among components of the server 
environment; 

receives at least one electronic information query for the encrypted sensitive 
data from at least one third-part system via the at least one secure channel; 

decrypts the encrypted sensitive data in response to the at least one electronic 
information query; and 

provides the decrypted sensitive data to the at least one third-party system via at 
least one secure coupling. 

2. (Currently Amended) A method for protecting sensitive information within 
server environments, comprising: 

e va l uating at l e ast on e ele ctronic requ e st rec ei ved ov e r at l east on e secur e 
I nternet channel; and 

identifying configured sensitive data elements inside the electronic request: 
applying at least one cryptographic operation to sensitive data in response to the 
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at least one electronic request, wherein sensitive data of the at least one electronic 
request is encrypted before transfer among components of the server environment, 
wherein encrypted sensitive data of the server environment is decrypted before transfer 
from the server environment. 

3. (Original) The method of claim 2, further comprising determining that the at 
least one electronic request includes sensitive data. 

4. (Currently Amended) The method of claim 2, wherein e va l uating identifying 
comprises identifying tags indicating that associated data is sensitive data. 

5. (Original) The method of claim 2, further comprising: 

determining that sensitive data in the electronic request includes at least one 
user password; and 

applying at least one hash function to the at least one user password. 

6. (Original) The method of claim 5, wherein the at least one hash function is a 
keyed hash function or a non-keyed hash function. 

7. (Currently Amended) The method of claim 2, further comprising: 
determining the at least one electronic request includes one or more cookies at 

lea st on e cook ie; 

identifying at least one cookie of the one or more cookies that includes sensitive 

data: 

applying at least one cryptographic function or checksum to the at least one 
cookie. 

8. (Original) The method of claim 2, wherein the at least one electronic request 
comprises at least one protocol over Secure Socket Layer. 

9. (Original) The method of claim 2, wherein the sensitive data comprises at 
least one data item selected from a group including credit card numbers, credit card 
information, account numbers, account information, birth dates, social security 
numbers, user information, and user passwords. 
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1 0. (Original) The method of claim 2, further comprising executing the at least 
one cryptographic operation using at least one public key. 

1 1 . (Original) The method of claim 2, wherein the at least one cryptographic 
operation includes at least one operation selected from a group including encryption 
operations, decryption operations, hash operations, keyed hash operations, and keyed 
hash verification. 

12. (Original) The method of claim 2, wherein encrypting includes performing at 
least one operation on the sensitive data selected from a group including hashing and 
keyed hashing when the sensitive data is a password. 

1 3. (Original) The method of claim 2, wherein the at least one electronic request 
comprises at least one encoded key identifier. 

14. (Original) A method for securing sensitive information within server systems, 
comprising: parsing at least one electronic request received via at least one Internet 
coupling; determining that the at least one electronic request includes sensitive data; 
encrypting the sensitive data; and storing the encrypted sensitive data in at least one 
component of the server system. 

1 5. (Original) The method of claim 1 4, further comprising: 

evaluating at least one request for the encrypted sensitive data, wherein the at 
least one request is received via at least one coupling with at least one third-party 
system; 

decrypting the encrypted sensitive data; 

providing the decrypted sensitive data to the at least one coupling with at least 
one third-party system. 

16. (Original) The method of claim 14, wherein encrypting includes performing at 
least one operation on the sensitive data selected from a group including hashing and 
keyed hashing when the sensitive data is a password. 

1 7. (Original) A method for securing sensitive information within server systems, 
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comprising: 

evaluating at least one electronic request received from at least one third-party 
system via at least one proprietary channel; 

determining the at least one electronic request includes a request for encrypted 
sensitive data and retrieving the encrypted sensitive data; 

decrypting the encrypted sensitive data; and 

providing the decrypted sensitive data to the at least one third-party system. 

1 8. (Currently Amended) A system for protecting sensitive information within 
server systems, comprising at least one processing device coupled among at least one 
server site and at least one client computer and at least one network, wherein the at 
least one processing device evaluates at least one electronic request received via the 
at least one network, wherein the at least one processing device identifies sensitive 
data inside the electronic request, wherein the at least one processing device applies 
at least one cryptographic operation to the sensitive data in response to the at least 
one electronic request, wherein the sensitive data of the at least one electronic request 
is encrypted prior to transfer among components of the at least one server system, 
wherein encrypted sensitive data of the at least one server system is decrypted prior to 
transfer among the at least one network. 

1 9. (Original) The system of claim 1 8, wherein the at least one processing device 
determines that the at least one electronic request includes sensitive data by 
identifying tags indicating that associated data is the sensitive data. 

20. (Original) The system of claim 18, wherein the at least one processing device 
determines that the at least one electronic request includes sensitive data by 
identifying tags specified by at least one system administrator that associated data is 
the sensitive data. 

21 . (Original) The system of claim 18, wherein the sensitive data comprises at 
least one data item selected from a group including credit card numbers, credit card 
information, account numbers, account information, birth dates, social security 
numbers, user information, and user passwords. 
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22. (Original) The system of claim 1 8, wherein the at least one cryptographic 
operation includes at least one operation selected from a group including encryption 
operations, decryption operations, hash operations, and keyed hash operations. 

23. (Original) A cryptographic appliance for securing sensitive information within 
a server system, comprising: at least one processing device coupled among at least 
one server system and at least one Internet coupling to evaluate at least one received 
electronic request, wherein the at least one processing device; determines when the at 
least one received electronic request includes sensitive data; encrypts the sensitive 
data; and transfers the encrypted sensitive data among at least one component of the 
at least one server system. 

24. (Original) The cryptographic appliance of claim 23, wherein the at least one 
processing device: evaluates at least one request for the encrypted sensitive data 
received via at least one coupling with at least one third-party system; decrypts the 
encrypted sensitive data; and transfers the decrypted sensitive data to the at least one 
third-party system. 

25. (Original) A cryptographic appliance for securing sensitive information within 
a server system, comprising: at least one processing device coupled among at least 
one server system and at least one third-party system, wherein the at least one 
processing device: receives at least one electronic request for encrypted sensitive 
information; retrieves the encrypted sensitive information decrypts the encrypted 
sensitive information; and provides the decrypted sensitive data to the at least one 
third-party system. 

26. (Currently Amended) A computer readable medium containing executable 
instructions which, when executed in a processing system, protects sensitive 
information within server environments by: evaluating at least one electronic request 
received over at least one network coupling; and identifying sensitive data inside the 
electronic request: applying at least one cryptographic operation to the sensitive data in 
response to the at least one electronic request, wherein sensitive data of the at least 
one electronic request is encrypted prior to transfer among components of the server 
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environments, wherein encrypted sensitive data of the server environments is 
decrypted prior to transfer among the at least one network coupling. 

27. (Currently Amended) An electromagnetic medium containing executable 
instructions which, when executed in a processing system, protects sensitive 
information within server environments by; e va l uating reading a configuration file to 
determine how to identify sensitive data within the at least one electronic request 
received over at least one network coupling; and applying at least one cryptographic 
operation to sensitive data in response to the at least one electronic request, wherein 
sensitive data of the at least one electronic request is encrypted prior to transfer among 
components of the server environments, wherein encrypted sensitive data of the server 
environments is decrypted prior to transfer among the at least one network coupling. 

28. (Original) A device for protecting sensitive information within server 
environments, comprising: means for receiving at least one electronic transaction query 
from the at least one client computer via at least one secure coupling; means for 
evaluating the at least one electronic transaction query for sensitive data; means for 
encrypting detected sensitive data; means for transferring the encrypted sensitive data 
among components of the server environment; means for receiving at least one 
electronic information query for the encrypted sensitive data from at least one third- 
party system via the at least one secure coupling; means for decrypting the encrypted 
sensitive data in response to the at least one electronic information query; and means 
for transferring the decrypted sensitive data to the at least one third-party system via 
the at least one secure coupling. 
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